Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add hal_bootctl_default read permission to rootfs in Recovery mode

Browse source 
Fix the following avc denial:
avc:  denied  { read } for  pid=485 comm="android.hardwar" name="bin" dev="rootfs" ino=9529 scontext=u:r:hal_bootctl_default:s0 tcontext=u:object_r:rootfs:s0 tclass=dir permissive=0

Bug: 282670401
Change-Id: I23ab086ba21d6ffea8b48b4208933c031effc4d4
Signed-off-by: Jason Chiu <jasoncschiu@google.com>
This commit is contained in:
Jason Chiu 2023-07-20 14:37:08 +08:00
parent 54b0343059
commit 90a1f80488
1 changed files with 4 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

4
vendor/hal_bootctl_default.te vendored
View file

@ -2,3 +2,7 @@ allow hal_bootctl_default devinfo_block_device:blk_file rw_file_perms;
allow hal_bootctl_default sda_block_device:blk_file rw_file_perms; allow hal_bootctl_default sda_block_device:blk_file rw_file_perms;
allow hal_bootctl_default sysfs_ota:file rw_file_perms; allow hal_bootctl_default sysfs_ota:file rw_file_perms;
allow hal_bootctl_default tee_device:chr_file rw_file_perms; allow hal_bootctl_default tee_device:chr_file rw_file_perms;
recovery_only(`
allow hal_bootctl_default rootfs:dir r_dir_perms;
')